Adobe Fixes Critical Security Holes

Tuesday, March 12, 2019 @ 02:03 PM gHale

Adobe released security updates for critical vulnerabilities in Adobe Digital Editions and Photoshop CC. Successful exploitation of either product could lead to arbitrary code execution in the context of the current user.

One vulnerability is in Adobe Digital Editions for releases and below.

Adobe Fixes ColdFusion Hole
Adobe Issues Acrobat, Reader Fixes
Adobe Clears Zero Day, Multiple Holes
Microsoft Patch Tuesday Fixes Zero Day

The vulnerability is a heap overflow that could cause execution of arbitrary code. The case number for the vulnerability labeled critical is CVE-2019-7095.

Users can mitigate the Adobe Digital Editions vulnerability by downloading

The other vulnerability is in Photoshop CC for Windows and macOS. The update resolves a critical vulnerability in Photoshop CC 19.1.7 (and earlier 19.x versions) as well as 20.0.2 (and earlier 20.x versions).

The case number for the vulnerability labeled critical is CVE-2019-7094.

Adobe recommends updating via the Creative Cloud desktop app’s update mechanism.

Users should download the newest version of Photoshop CC 19.1.18 or 20.0.4.

Leave a Reply

You must be logged in to post a comment.